The PC-BSD User Manager utility allows you to easily add and delete users and groups on your system, as well as change a user's or the administrative password. To access this utility, go to Control Panel -> User Manager. After inputting the administrative password, you should see a screen similar to Figure 7.4a, though the names of your users accounts will vary:

The PC-BSD® User Manager utility, seen in Figure 8.8a, allows you to easily add and delete users and groups, as well as change a user's or the administrative password. To access this utility, go to ''[[Control Panel]]'' ➜ ''[[User Manager]]'' or type '''pc-su pc-usermanager.''' You will need to input the administrative password in order to access this utility.

−

In this example, the system has 2 user accounts. The "dru" account has the ability to become the superuser as the "Can administrate system" checkbox is checked. The password for any user can be changed by first highlighting the user name then clicking the "Change Password" button. Since the superuser is is using this utility, you will not be prompted for the old password in order to reset the password; this can be handy if a user has forgotten their password and can no longer log into the PC-BSD system. If you click the "Change Admin Password" button, you can change the password that is used whenever you are prompted for administrative access.

If you click the "Advanced View" button, this screen will change to show all of the accounts on the system, not just the user accounts that you created. An example is seen in Figure 7.4b.

+

<!--T:4-->

+

In this example, the system has 2 user accounts. The ''dru'' account has the ability to become the superuser as the "Can administrate system" checkbox is checked.

−

'''Figure 7.4b: Viewing All Accounts and Their Details'''

+

<!--T:5-->

+

If you click the "Remove" button for a highlighted user, a pop-up menu will ask if you would like to also delete the user's home directory (along with all of their files). If you click "No", the user will still be deleted but their home directory will remain. If you have only created one user account, the "Remove" button will be greyed out as you need at least one user to be able to login to the PC-BSD® system.

−

[[Image:User2.png]]

+

<!--T:6-->

+

{{note|width=48.5%|icon64=while a removed user will no longer be listed, the user account will not actually be deleted until you click the "Apply" button. A pop-up message will indicate that you have pending changes if you close User Manager without clicking "Apply". If you change your mind, click "No" and the user account will not be deleted; otherwise, click "Yes" and the user will be deleted and User Manager will close.}}

−

The accounts that you did not create are known as system accounts and are needed by the operating system or installed applications. This means that you should not delete any accounts that you did not create yourself; doing so may cause a previously working application to stop working. Advanced view provides additional information associated with each account, such as the user ID number, full name (description), home directory, default shell, and primary group. System accounts usually have a shell of "nologin" for security reasons, meaning that an attacker can't try to login to the system using that account name.

+

<!--T:7-->

+

The password for any user can be changed by first highlighting the user name then clicking the "Change Password" button. You will not be prompted for the old password in order to reset a user's password; this can be handy if a user has forgotten their password and can no longer log into the PC-BSD® system. If you click the "Change Admin Password" button, you can change the password that is used whenever you are prompted for administrative access.

−

This screen allows you to add or remove accounts. Figure 7.4c shows the add user account creation screen--click the Add button to open this screen:

+

<!--T:8-->

+

If you click the "Advanced View" button, this screen will change to show all of the accounts on the system, not just the user accounts that you created. An example is seen in Figure 8.8b.

−

'''Figure 7.4c: Creating a New User Account'''

+

<!--T:9-->

+

[[File:User2.png|thumb|393px|'''Figure 8.8b: Viewing All Accounts and Their Details''']]

−

[[Image:User4.png]]

+

<!--T:10-->

+

The accounts that you did not create are known as system accounts and are needed by the operating system or installed applications. You should not delete any accounts that you did not create yourself as doing so may cause a previously working application to stop working. "Advanced View" provides additional information associated with each account, such as the user ID number, full name (description), home directory, default shell, and primary group. System accounts usually have a shell of ''nologin'' for security reasons, meaning that an attacker cannot try to login to the system using that account name.

−

The following information is needed to create a new user or system account:

{{note|width=48.5%|icon64=if you click the "Add" button while in "Simple View", you will only be prompted to enter the username, full name, and password.}}

−

'''Username:''' this is the name the user will use when they log in to the system; it is case sensitive and can not contain any spaces. If you are creating a system account needed by an application, use the name provided by the application's installation instructions. If the name that you type in already exists as an account, it will be highlighted in red and the utility will prompt you to use another name.

'''Full Name:''' this field provides a description of the account and can contain spaces. If it is a user account, use the person's first and last name. If it is a system account, you can input a description to remind you which application uses the account.

+

<!--T:13-->

+

This screen is used to input the following information when adding a new user or system account:

−

'''Home Directory:''' you can leave this field empty for a user account as the system will automatically create a home directory for them under /home/username. However, if you are creating a system account it is important to override this default by typing in /var/empty or /nonexistent unless the application's installation instructions specify that the account needs a specific home directory.

+

<!--T:14-->

+

'''Username:''' the name the user will use when they log in to the system; it is case sensitive and can not contain any spaces. If you are creating a system account needed by an application, use the name provided by the application's installation instructions. If the name that you choose already exists as an account, it will be highlighted in red and the utility will prompt you to use another name.

−

'''Shell:''' this drop down menu contains the shells that are available for user accounts when they work from a command prompt. You can either keep the default or select a shell which the user prefers.

+

<!--T:15-->

+

'''Full Name:''' this field provides a description of the account and can contain spaces. If it is a user account, use the person's first and last name. If it is a system account, input a description to remind you which application uses the account.

−

'''Primary Group:''' if you leave the default button of "New Group" selected, a group will be created with the same name as the user. This is usually what you want unless you are creating a system account and the installation instructions specify a different group name. Note that the drop down menu for specifying a group name will only show existing groups, but you can quickly create a group as described in the groups tab below.

+

<!--T:16-->

+

'''Home Directory:''' you can leave this field empty for a user account as the system will automatically create a home directory under ''/home/username''. However, if you are creating a system account it is important to override this default by typing in ''/var/empty'' or ''/nonexistent'' unless the application's installation instructions specify that the account needs a specific home directory.

−

'''Password:''' the password is case-sensitive and needs to be typed in twice in order to confirm the password.

+

<!--T:17-->

+

'''Shell:''' this drop-down menu contains the shells that are available to users when they are at a command prompt. You can either keep the default or select a shell which the user prefers.

−

Once you have made your selections, press the Ok button to create the account.

+

<!--T:18-->

+

'''Primary Group:''' if you leave the default button of "New Group" selected, a group will be created with the same name as the user. This is usually what you want unless you are creating a system account and the installation instructions specify a different group name. Note that the drop-down menu for specifying a group name will only show existing groups, but you can quickly create a group using the "Groups" tab.

−

If you click the Groups tab, you can view all of the groups on the system, as seen in Figure 7.4d:

+

<!--T:19-->

+

'''Password:''' the password is case-sensitive and needs to be confirmed.

−

'''Figure 7.4d: Managing Groups Using User Manager'''

+

<!--T:20-->

+

Once you have made your selections, press the "Ok" button to create the account.

−

[[Image:User3.png]]

+

<!--T:21-->

+

If you click the "Groups" tab, you can view all of the groups on the system, as seen in Figure 8.8d.

'''Available:''' shows all of the system and user accounts on the system in alphabetical order.

'''Available:''' shows all of the system and user accounts on the system in alphabetical order.

−

'''Members:''' indicates if the highlighted group contains any accounts.

+

<!--T:25-->

+

'''Members:''' indicates if the highlighted group contains any user accounts.

+

+

<!--T:26-->

+

To add an account to a group, highlight the group name in the first column. Then, highlight the account name in the "Available" column. Click the right arrow and the selected account will appear in the "Members" column. You should only add user accounts to groups that you create yourself or when an application's installation instructions indicate that an account needs to be added to a group.

−

To add an account to a group, highlight the group name in the first column. Then, highlight the account name in the available column. Click the right arrow and the selected account will show in the members column. You should only add user accounts to groups that you create yourself or when an application's installation instructions indicate that an account needs to be added to a group.

+

<!--T:27-->

+

If you click the "Add" button, a pop-up menu will prompt you for the name of the new group. Once you press "OK", the group will be added to the "Groups" column.

−

If you click the Add button, a pop-up menu will prompt you for the name of the new group. Once you press OK, the group will be added to the groups column.

+

<!--T:28-->

+

If you click the "Remove" button, the highlighted group will automatically be deleted after you press the "Apply" button, so be sure to do this with care. Again, do not remove any groups that you did not create yourself or applications that used to work may stop working.

−

If you click the Remove button, that group will automatically be deleted after you press the Apply button, so be sure to do this with care. Again, don't remove any groups that you did not create yourself or applications that used to work may stop working.

+

<!--T:29-->

+

<noinclude>

+

[[category:handbook]]

+

[[category:Control Panel]]

+

[[category:User Manager]]

+

</noinclude>

+

</translate>

+

<languages/>

Revision as of 03:17, 22 April 2013

(Sorry for the inconvenience)

Editor: please update template:UseTOC/9.2

Translator: please use {{UseTOC{{putVers}}|TOC}}

Protection (edit): sysopEdited by: Tigersharke

The PC-BSD® User Manager utility, seen in Figure 8.8a, allows you to easily add and delete users and groups, as well as change a user's or the administrative password. To access this utility, go to Control Panel ➜ User Manager or type pc-su pc-usermanager. You will need to input the administrative password in order to access this utility.

Figure 8.8a: Viewing User Accounts in User Manager

In this example, the system has 2 user accounts. The dru account has the ability to become the superuser as the "Can administrate system" checkbox is checked.

If you click the "Remove" button for a highlighted user, a pop-up menu will ask if you would like to also delete the user's home directory (along with all of their files). If you click "No", the user will still be deleted but their home directory will remain. If you have only created one user account, the "Remove" button will be greyed out as you need at least one user to be able to login to the PC-BSD® system.

While a removed user will no longer be listed, the user account will not actually be deleted until you click the "Apply" button. A pop-up message will indicate that you have pending changes if you close User Manager without clicking "Apply". If you change your mind, click "No" and the user account will not be deleted; otherwise, click "Yes" and the user will be deleted and User Manager will close.

The password for any user can be changed by first highlighting the user name then clicking the "Change Password" button. You will not be prompted for the old password in order to reset a user's password; this can be handy if a user has forgotten their password and can no longer log into the PC-BSD® system. If you click the "Change Admin Password" button, you can change the password that is used whenever you are prompted for administrative access.

If you click the "Advanced View" button, this screen will change to show all of the accounts on the system, not just the user accounts that you created. An example is seen in Figure 8.8b.

Figure 8.8b: Viewing All Accounts and Their Details

The accounts that you did not create are known as system accounts and are needed by the operating system or installed applications. You should not delete any accounts that you did not create yourself as doing so may cause a previously working application to stop working. "Advanced View" provides additional information associated with each account, such as the user ID number, full name (description), home directory, default shell, and primary group. System accounts usually have a shell of nologin for security reasons, meaning that an attacker cannot try to login to the system using that account name.

If you click the "Add" button while in "Simple View", you will only be prompted to enter the username, full name, and password.

Figure 8.8c: Creating a New User Account

This screen is used to input the following information when adding a new user or system account:

Username: the name the user will use when they log in to the system; it is case sensitive and can not contain any spaces. If you are creating a system account needed by an application, use the name provided by the application's installation instructions. If the name that you choose already exists as an account, it will be highlighted in red and the utility will prompt you to use another name.

Full Name: this field provides a description of the account and can contain spaces. If it is a user account, use the person's first and last name. If it is a system account, input a description to remind you which application uses the account.

Home Directory: you can leave this field empty for a user account as the system will automatically create a home directory under /home/username. However, if you are creating a system account it is important to override this default by typing in /var/empty or /nonexistent unless the application's installation instructions specify that the account needs a specific home directory.

Shell: this drop-down menu contains the shells that are available to users when they are at a command prompt. You can either keep the default or select a shell which the user prefers.

Primary Group: if you leave the default button of "New Group" selected, a group will be created with the same name as the user. This is usually what you want unless you are creating a system account and the installation instructions specify a different group name. Note that the drop-down menu for specifying a group name will only show existing groups, but you can quickly create a group using the "Groups" tab.

Password: the password is case-sensitive and needs to be confirmed.

Once you have made your selections, press the "Ok" button to create the account.

If you click the "Groups" tab, you can view all of the groups on the system, as seen in Figure 8.8d.

Figure 8.8d: Managing Groups Using User Manager

This screen has 3 columns:

Groups: shows all of the groups on the system.

Available: shows all of the system and user accounts on the system in alphabetical order.

Members: indicates if the highlighted group contains any user accounts.

To add an account to a group, highlight the group name in the first column. Then, highlight the account name in the "Available" column. Click the right arrow and the selected account will appear in the "Members" column. You should only add user accounts to groups that you create yourself or when an application's installation instructions indicate that an account needs to be added to a group.

If you click the "Add" button, a pop-up menu will prompt you for the name of the new group. Once you press "OK", the group will be added to the "Groups" column.

If you click the "Remove" button, the highlighted group will automatically be deleted after you press the "Apply" button, so be sure to do this with care. Again, do not remove any groups that you did not create yourself or applications that used to work may stop working.